| タイトル | Open-Source LitmusChaos 3.19.0 Authorization Bypass via LocalStorage |
|---|
| 説明 | An authorization bypass vulnerability was identified in the LitmusChaos platform, where an authenticated user can escalate their privileges and gain owner-level access to a project by manipulating the projectID value stored in the browser's LocalStorage. This occurs due to the absence of proper backend validation for project ownership and user authorization.
The LitmusChaos platform stores the projectID in the browser’s LocalStorage, which can be freely modified by the client. Upon modifying this value to reference a different project, the application fails to verify whether the user is authorized to access or control the new project. As a result, the attacker is able to perform privileged operations—such as editing configurations, deleting resources, or inviting users—on a project they do not own.
This design flaw shifts critical access control logic to the client side, violating standard security practices and enabling unauthorized privilege escalation. |
|---|
| ソース | ⚠️ https://github.com/MaiqueSilva/VulnDB/blob/main/readme04.md |
|---|
| ユーザー | maique (UID 88562) |
|---|
| 送信 | 2025年07月31日 04:11 (9 月 ago) |
|---|
| モデレーション | 2025年08月09日 07:34 (9 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 319322 [LitmusChaos Litmus 迄 3.19.0 LocalStorage projectID 特権昇格] |
|---|
| ポイント | 20 |
|---|